Huge increase in WordPress xmlrpc.php POST requests
WordPress xmlprc.php DDoS and brute-force attacks. How to identify, block, mitigate and leverage these xmlrpc.php scans, brute-force, and user enumeration attacks on WordPress sites... Secure WordPress xmlprc.php interface and reduce service disruption.
Remove IIS Server version HTTP Response Header
How to hide the .php file extension with IIS URL Rewrite Module
WordPress 3.5 on IIS 8.0 is unable to save a web.config file
Create your own PHP based Origin Pull CDN
Convert .htaccess to web.config
This post describes some of the IIS URL Rewrite Module web.config equivalents of commonly used Apache .htaccess settings. You'll learn how to translate .htaccess content to IIS web.config, this is useful when you need to migrate your website from Apache to Windows Server IIS. The second part of this post outlines how to use Internet Information Services Manager to import and convert .htaccess rules to web.config automatically.
"htaccess files should not be used for security restrictions"
How to filter web traffic with blocklists
How to use .htaccess files on Windows Server IIS
In this post I'll show you how to install Helicon Ape in Windows Server IIS and how to use .htaccess files for your website. Yes, expect a lot of .htaccess examples for IIS :) Further this post describes some common uses of .htaccess files by PHP applications like WordPress, Joomla, Drupal, or your own coded CMS. For example how to manage subdomains or HTTPS redirections.
7 Snippets to use .htaccess as a Web Application Firewall
Here are 7 .htaccess snippets for you to secure your website, by using .htaccess as a kind of Web Application Firewall (WAF). You can use this information to block exploits and rogue HTTP requests on your website.